This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft (raw, json) Hash identifier: hxQN606pmD94utERCDVbCUH9E6d39RMaN1APQRtyLEQ= Subject key identifier: 4D:06:71:BE:66:72:4A:40:BA:AE:83:26:DE:28:49:51:79:6F:7A:B7 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft Manifest number: 0201 Signing time: Fri 05 Dec 2025 00:43:07 +0000 Manifest this update: Fri 05 Dec 2025 00:43:06 +0000 Manifest next update: Fri 12 Dec 2025 00:43:06 +0000 Files and hashes: 1: hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl (hash: sJd2uOrAB3AyVkpnee3vp3euabYSu6BTRERW9+jfPuY=) 2: 54FB2C8CD61711EEB983D919C4F9AE02.roa (hash: JeP8VoOcpiutGG7hGzbyaQvIgNDCVBOYu3S0WeuVu3E=) 3: 5576D030D61711EEB983D919C4F9AE02.roa (hash: UaaSyqLY1EU1feMuBNb93HrMgg8A6BJd78TyE8+TiZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Dec 5 00:43:06 2025 GMT Not After : Dec 12 00:43:06 2025 GMT Subject: CN=69322a9b-6405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:de:60:0e:15:55:4b:61:2b:8a:b9:76:d4:e0: 51:2b:89:ac:2f:64:55:3c:c4:1e:a5:d6:47:6a:39: 43:d8:7a:fc:c4:6b:8e:2b:d9:f5:40:ce:be:03:31: 6f:6b:b5:23:d4:a1:3a:1f:be:63:dd:1d:aa:e3:ba: 9e:88:9c:57:c2:b4:e8:1a:1e:33:3f:e9:8d:3a:3d: ec:2f:58:d9:56:0a:c6:80:d7:ff:d2:a1:5c:6d:ea: 37:2d:3a:f8:64:7b:9e:4f:30:1f:15:5a:55:3d:8a: 59:69:bb:77:86:d4:ae:a1:d1:44:ab:dc:09:7d:a8: 8c:db:33:b4:d0:be:c9:b5:cc:a8:2c:f7:86:02:ca: d8:0a:26:e7:e8:4a:a2:f5:31:98:9c:ab:d2:50:24: ca:31:bc:65:a5:cf:1b:9f:70:a6:98:c7:a1:29:d1: af:1e:38:70:58:4d:19:40:87:50:46:84:61:b2:67: 6a:3b:f0:80:26:39:f4:e2:30:9c:0d:54:87:df:fb: 06:8f:f2:dc:54:f5:93:12:e9:77:95:e7:bf:52:11: 58:fa:a7:48:57:98:37:6d:26:e2:fc:b5:39:50:5f: 3f:9a:83:85:6c:dc:59:18:63:46:1a:5d:9b:92:21: 2f:e7:e4:b3:10:0a:0d:c1:6c:cf:03:1e:4f:a7:61: f9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:06:71:BE:66:72:4A:40:BA:AE:83:26:DE:28:49:51:79:6F:7A:B7 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:9f:ce:10:d8:13:ca:44:5c:fe:72:ff:d5:93:6f:42:0e:90: 7d:6c:45:7a:2d:68:9b:45:a9:b5:2e:15:a9:94:e2:dc:1a:df: 81:d9:df:60:b0:5e:40:ab:78:f0:f4:5b:d2:e7:78:d8:2a:56: cf:a8:6c:ac:fa:d2:e0:0d:4e:29:ad:72:3a:48:6d:95:4b:be: 21:14:a9:a5:2e:bd:4e:bf:4d:75:c9:e7:a4:23:20:7a:e6:00: 36:32:b8:fc:93:fb:67:a7:84:a9:ad:cf:6b:47:8d:99:68:28: b9:14:89:3d:df:de:cc:32:41:36:22:ed:31:bd:94:e2:07:8e: 6a:f2:87:2d:10:d4:d2:14:a1:eb:aa:8d:40:5d:31:09:93:9d: 75:09:5e:5a:61:d5:56:6a:4a:2e:65:34:fd:5c:42:3e:ff:53: 39:74:a1:27:b6:75:fa:0e:ab:ef:c1:49:d5:f9:9e:e5:c5:f8: 4f:be:74:c7:ea:20:76:2b:9b:57:7e:17:b7:85:a2:08:35:c4: c5:62:d1:71:fc:d5:04:b9:02:9f:5d:cd:35:b1:ea:a5:f5:65: d0:51:da:fb:1b:41:d0:2c:67:60:41:e5:26:07:97:05:47:0b: f9:1e:89:77:1f:68:ee:06:f4:81:d3:ac:da:e6:c8:b5:ea:46: 72:78:87:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjUxMjA1MDA0MzA2WhcNMjUxMjEyMDA0MzA2WjAYMRYwFAYD VQQDEw02OTMyMmE5Yi02NDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwN5gDhVVS2Erirl21OBRK4msL2RVPMQepdZHajlD2Hr8xGuOK9n1QM6+AzFv a7Uj1KE6H75j3R2q47qeiJxXwrToGh4zP+mNOj3sL1jZVgrGgNf/0qFcbeo3LTr4 ZHueTzAfFVpVPYpZabt3htSuodFEq9wJfaiM2zO00L7JtcyoLPeGAsrYCibn6Eqi 9TGYnKvSUCTKMbxlpc8bn3CmmMehKdGvHjhwWE0ZQIdQRoRhsmdqO/CAJjn04jCc DVSH3/sGj/LcVPWTEul3lee/UhFY+qdIV5g3bSbi/LU5UF8/moOFbNxZGGNGGl2b kiEv5+SzEAoNwWzPAx5Pp2H5EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0Gcb5m ckpAuq6DJt4oSVF5b3q3MB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBI Z1FyX3Vtd29fX0kxZ3FJT3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCln84Q2BPKRFz+cv/Vk29CDpB9bEV6LWibRam1LhWplOLcGt+B2d9g sF5Aq3jw9FvS53jYKlbPqGys+tLgDU4prXI6SG2VS74hFKmlLr1Ov011yeekIyB6 5gA2Mrj8k/tnp4Sprc9rR42ZaCi5FIk9397MMkE2Iu0xvZTiB45q8octENTSFKHr qo1AXTEJk511CV5aYdVWakouZTT9XEI+/1M5dKEntnX6DqvvwUnV+Z7lxfhPvnTH 6iB2K5tXfhe3haIINcTFYtFx/NUEuQKfXc01seql9WXQUdr7G0HQLGdgQeUmB5cF Rwv5Hol3H2juBvSB06za5si16kZyeIc5 -----END CERTIFICATE-----Generated at Sun Dec 7 00:34:03 2025 by rpki-client